It’s true; the future of cyber security is AI.
It’s advancing daily, and eventually, all antivirus and general security protection will be provided by AI-enabled analysis. But we’re some way off this yet, and despite advances, AI is only one element in building our security defences against future cyber threats. It is important to take a risk and business-centric approach to gathering and examining threat intelligence and making informed decisions on this at Board level.
Risks to an organisation can emerge despite having made significant investment in security controls. We can become complacent once that initial investment has been made and forget that buying a tool is the beginning, and not the end, of the journey. SIEM products provide the best example of this. So, we have a big tick on the spreadsheet next to ‘security’, but does it really mean that the organisation’s defence is any better?
The effectiveness of the product is conditional upon the organisation’s depth of expertise in being able to tune the solution to the specific and properly defined protective security monitoring objectives. It’s rare that organisations have the necessary in-house…
